What is claimed 
A method 



3. 



♦ 

of establis 



Lg a private network community (PNC) among a plurality of 
clients configured to linked over one or more of a plurality of communication 
channels, said method comprising: 

A. linking to a virtial network generation (VNG) system, having access to said 
communication channels, and establishing a set of PNC attributes, including 
establishing a set of client attributes associated with said clients and a set of 
network attributes 



each 



B. accessing a VNG 
plurality of clientjs 

C. authenticating 

D. establishing said 
designating a 
clients as if they 



system data store including PNC information related to said 
and a plurality of network types; 

of said clients, as a function of said PNC information; and 
PNC as a function of said set of PNC attributes, including 
viftual PNC address for each of said clients and linking said 
vere connected via a LAN. 



The method according to claim 1 wherein said plurality of clients is operated by a 
corresponding plurality qf users and said data store includes identification information 



related to said plurality o 



1) 
2) 



users. 



The method according n claim 1 wherein at least one of said plurality of clients is 
chosen from a group of Network enabled devices comprising: 

computer; 



a persona 



a personal digital assistant; 
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3) a mobile cellular telephone; 

4) a netx^prk appliance; 

5) a digitally loadable music or video player; 

6) an on-HAe video game; and 

7) a home appliance. 
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The method according! to claim 1 wherein at least one of said plurality of 
communication channels }s chosen from a group comprising: 
1) Internet; 



2) 
3) 
4) 
5) 
6) 



a cable network; 



metropolitan area networks (MAN); 



a power-line 
a telephone 



network; 
ne; 



a satellite link; and 



7) wireless networks. 



The method according to claim 1 wherein said client attributes include, for each client: 



1) an identificatioi 

2) a PNC address 



attribute, identifying said client; and 
Attribute, identifying a network location of said client. 



The method according to clahr 1 wherein said network attributes include: 

1) a security management attribute, identifying a network security level to 
which said PNClmust adhere. 
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The method of claim 1 further comprising: 

E. selectively c isestablishing said PNC in response to a termination event. 

The method according to claim 7 wherein step E includes: 

1) disassociating each of said designated addresses from said clients. 
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The method according to claim 7 wherein said termination event includes one of more 
of the following: 

1) issuing A termination command by at least one of said clients to said 



2) 
3) 



VNG sys 
detecting 
detecting 



4) lapsing o; 



The method according tc 

E. modifying said P 

F. modifying said 



:em; 

completion of a predefined set of tasks; 
security violation; and 
a termination point in time. 



claim 1 further comprising: 
attributes; and 



nt links as a function of said modified PNC attributes. 




The method of claim 1, titrther comprising: 
E. sending a packet across said PNC, from a first client to a second client, wherein 
said sending said packet includes: 

1) grabbing a packet destined for the virtual network card; 

2) identifying said packet; 
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3) wrapping said packet in a wrapper frame by said first client; 

4) transmitting said packet from said first client and receiving said packet 
by said seqpnd client; 

5) unwrapping said packet by said second client, and 

6) injecting said packet into a networking driver interface system of said 
second clientl as if said packet was received by a standard network card 
of said second client. 



The method of claim 11 wherein sub-step 4) includes: 

a) sending said packet to a VNG server of said VNG system; and 

b) forwardjng said packet by said VNG server to a set of 
destinations clients, including said second client, associated with 
said pack 2t. 

The method of claim 12, wherein said first client implements a first protocol and said 
second client implements a second protocol, and wherein sub-step 3 includes wrapping 

e with said first protocol and sub-step b) includes: 
i wrapping said packet; and 

- wrapping said packet in a frame that is compatible with 
sail second protocol, 
iii. transmitting said re- wrapped packet to said second client. 



said packet in a frame compatib 



i. 



u. 



un 



re- 



1 14. The method of claim 11, wherein sub-step 3) includes compressing said message 
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acceding to said network attributes and sub-step 5) includes decompressing of said 
message. 

15. The method of claim 11, wherein sub-step 3) includes encrypting said message 
accordingi to said network attributes and sub-step 5) includes decrypting said message. 

16. The method of claim 1, wherein said VNG system includes a billing manager, said 
method further comprising: 

E. monitoring usage of said PNC by said plurality of devices and generating, as a 
function of said usage, a corresponding usage bill. 

17. The method of cl&m 1 wherein step B includes: 

1) accessing a VNG system Web site. 

18. A virtual network generation (VNG) system configured to establish and manage a 
plurality of PNCs among a plurality of clients and over a plurality of communication 
channels, said VNG system comprising: 

A. a data store incluuing PNC information related to said clients and a plurality of 
network types; \ 

B. a VNG processing device coupled to said data store, said VNG processing 
device including: \ 

1) an authentication manager, configured to receive, store and selectively 
authenticate a PNC workgroup of clients from said plurality of clients, as 
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a function of a client identification; 

2) a PNC manager, configured to receive and store a set of PNC attributes 
related to a J>NC to be established, wherein said PNC attributes identify 
the PNC workgroup and a set of PNC security requirements; 

3) a PNC routing manager, configured to generate a PNC address for each 
client; and 

4) a communication manager, configured to link said clients, as if they 
were connected via a LAN, as a function of said PNC attributes; and 

a network interface system coupling said VNG processing device to at least one 
of said plurality of communication channels. 



19. A VNG system according to 
D. a PNC termination 



cl iim 



im 18, further comprising: 
manager, configured to selectively terminate said PNC in 



response to a termination event. 



20. A VNG system according to clftim 

to disassociate each of said designated 



19 wherein said termination manager is configured 
addresses from said clients. 



21. A VNG system according to cjaim 19 wherein said termination event includes at least 
one of the following: 

1) issuing a termination command by at least one of said clients to said 
VNG system; 

2) detecting completion of a predefined set of tasks; 
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3) detecting i security violation; and 

4) lapsing of a termination point in time. 



A VNG system according 
corresponding plurality 
related to said plurality 



to claim 18 wherein said plurality of clients is operated by a 
of users and said data store includes identification information 



3f users. 



A VNG system according to claim 18 wherein at least one of said plurality of clients is 
chosen from a group of r etwork enabled devices comprising: 
1) a personal computer; 

a personal digital assistant; 
a mobile c ellular telephone; 
a network appliance; 

a digitally loadable music or video player; 
an on-line video game; and 



2) 
3) 
4) 
5) 
6) 
7) 



a home appliance 



1 24. A VNG system according to claim 18 wherein at least one of said plurality of 

2 communication channels is chosen from a group comprising: 

3 1) Internet;/ 



2) a cable faetwork; 

3) metropolitan area networks (MAN); 

4) a power-line network; 
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5) a telephone line; 

6) a satelliteuink; and 



7) 



wireless networks. 



l 25. A VNG system according to claim 18 wherein said client attributes include, for each 



3 
4 



client: 



1) an identification attribute, identifying said client; and 

2) a PNC address attribute, identifying a network location of said client. 
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A VNG system according tol claim 18, further including: 
D. a front end VNG system Web site. 



A VNG system according to 

1) a security management 
which said PN( I 



^ 28. A VNG system according to 



to: 



aim 18 wherein said network attributes include: 



attribute, identifying a network security level to 
must adhere. 



olaim 18 wherein said PNC manager includes configured 



3 a) PNC attribute modifier; and 

4 b) PNC client link modifier, configured to modify said client links 

5 as a func ion of a set of modified PNC attributes. 

1 29. A VNG system according to chim 18, wherein each client in said PNC includes: 

2 D. a client module configured to wrap packets to be transmitted in a wrapper 
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frame, wherein mid wrapper frame is compatible with at least one of said 
plurality of communication channels and a corresponding communication 
protocol. / 

30. A VNG system according to claim 18, wherein message traffic within said PNC is 
encrypted. / 

31. A VNG system according to claim 18, wherein said VNG processing device further 
includes / 

5) a usage monitor configured to monitor usage of said PNC by said plurality of 
clients ana generate corresponding usage information; and 

6) a billing manager, configured to generate a corresponding invoice, as a function 
of said usage information. 
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